Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: kinovalli.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Date: Mon, 23 Jun 2014 03:14:43 GMT
Pragma: no-cache
Server: Microsoft-IIS/7.5
Content-Length: 87579
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 614877d63478ba1c679c4de5d7bf27a1=auom3strln3fl5jg9ile9eie70; path=/
X-Powered-By: PHP/5.3.8
X-Powered-By: ASP.NET
...87579 bytes of data.
GET / HTTP/1.1
Host: kinovalli.net
Result:
HTTP/1.1 200 OK
Cache-Control: no-cache
Date: Mon, 23 Jun 2014 03:14:43 GMT
Pragma: no-cache
Server: Microsoft-IIS/7.5
Content-Length: 87579
Content-Type: text/html; charset=utf-8
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Set-Cookie: 614877d63478ba1c679c4de5d7bf27a1=auom3strln3fl5jg9ile9eie70; path=/
X-Powered-By: PHP/5.3.8
X-Powered-By: ASP.NET
...87579 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: kinovalli.net
Referer: http://www.google.com/search?q=kinovalli.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: kinovalli.net
Referer: http://www.google.com/search?q=kinovalli.net
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
| Request | Server response | Status |
http://kinovalli.net/ | 200 OK Content-Length: 87579 Content-Type: text/html | clean |
http://kinovalli.net/cache/js-aa298ea189c0f602f4692ad6f019e352.php | 200 OK Content-Length: 300581 Content-Type: application/x-javascript | clean |
http://kinovalli.net/index.php/program/ovog-tjedna-u-kinu | 200 OK Content-Length: 81521 Content-Type: text/html | clean |
http://kinovalli.net/cache/js-49c0b2e52e633745d067a5495ad3ae5f.php | 200 OK Content-Length: 302917 Content-Type: application/x-javascript | clean |
http://kinovalli.net/index.php/program/filmski-hitovi | 200 OK Content-Length: 59321 Content-Type: text/html | clean |
http://kinovalli.net/cache/js-13a811e5b94afc73d446be4c174de955.php | 200 OK Content-Length: 300581 Content-Type: application/x-javascript | clean |
http://kinovalli.net/index.php/program/nezavisni-filmovi | 200 OK Content-Length: 56518 Content-Type: text/html | clean |
http://kinovalli.net/index.php/program/filmovi-za-djecu | 200 OK Content-Length: 53382 Content-Type: text/html | clean |
http://kinovalli.net/index.php/program/dokumentarci | 200 OK Content-Length: 52676 Content-Type: text/html | clean |
http://kinovalli.net/index.php/program/kinoteka-retrospektive | 200 OK Content-Length: 56139 Content-Type: text/html | clean |
http://kinovalli.net/index.php/program/posebna-dogadanja | 200 OK Content-Length: 53996 Content-Type: text/html | clean |
http://kinovalli.net/index.php/program/najave | 200 OK Content-Length: 56454 Content-Type: text/html | clean |
http://kinovalli.net/index.php/posebni-programi/fus/aktualno | 200 OK Content-Length: 56802 Content-Type: text/html | clean |
http://kinovalli.net/index.php/posebni-programi/fus/o-fus-u | 200 OK Content-Length: 63013 Content-Type: text/html | clean |
http://kinovalli.net/index.php/posebni-programi/fus/vodici | 200 OK Content-Length: 48385 Content-Type: text/html | clean |
Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=kinovalli.net
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://kinovalli.net/
Result: kinovalli.net is not infected or malware details are not published yet.
Result: kinovalli.net is not infected or malware details are not published yet.